Redmond says that Canada's new spam law is to blame On Friday, Microsoft told security notification subscribers that the service would halt operations on July 1.From the email:As of July 1, 2014, due to changing governmental policies concerning the issuance of automated electronic messaging, Microsoft is suspending the use of email notifications that announce the following:Security bulletin advance notificationsSecurity bulletin summariesNew security advisories and bulletinsMajor and minor revisions to security advisories and bulletinsIn order to stay up-to-date on things, Microsoft encouraged subscribers to use their RSS service, which offers the same information.The closure notifications came suddenly, causing confusion among some subscribers. However, Microsoft says the change is due to a new law in Canada, which goes into effect on the same day. Canada’s anti-spam law would require organizations to obtain consent for bulk email lists, requiring customers or prospective customers to complete an explicit opt-in process, else the company could face a $10M CAD fine for sending mass notifications.It isn’t clear why Microsoft has suddenly altered the 12-year-old notification system. In 2002, the email lists were created as a way to coordinate Patch Tuesday updates and keep IT professionals in the loop about security-related alerts. Under the new anti-spam laws, Microsoft would be exempt from the fines. Microsoft would be exempt from such a penalty, because the law offers protection for those who maintain lists for “…warranty information, product recall information or safety or security information about a product, goods or a service that the person to whom the message is sent uses, has used or has purchased…”Until July 13, Microsoft will register those who opt-in to their mailing lists for a drawing that promises a $500 CDN Microsoft gift voucher.The promotion is only open to legal residents of Canada.Update:Microsoft says the notification service will resume operation on July 3.A Microsoft spokesperson stated the following after this story originally ran: “On June 27, 2014, Microsoft notified customers that we were suspending Microsoft Security Notifications due to changing governmental policies concerning the issuance of automated electronic messaging. We have reviewed our processes and will resume these security notifications with our monthly Advanced Notification Service (ANS) on July 3, 2014.” Related content news Gwinnett Medical Center investigating possible data breach After being contacted by Salted Hash, Gwinnett Medical Center has confirmed they're investigating a security incident By Steve Ragan Oct 02, 2018 6 mins Regulation Data Breach Hacking news Facebook: 30 million accounts impacted by security flaw (updated) In a blog post, Facebook’s VP of product management Guy Rosen said the attackers exploited a flaw in the website's 'View As' function By Steve Ragan Sep 28, 2018 4 mins Data Breach Security news Scammers pose as CNN's Wolf Blitzer, target security professionals Did they really think this would work? By Steve Ragan Sep 04, 2018 2 mins Phishing Social Engineering Security news Congress pushes MITRE to fix CVE program, suggests regular reviews and stable funding After a year of investigation into the Common Vulnerabilities and Exposures (CVE) program, the Energy and Commerce Committee has some suggestions as to how it can be improved By Steve Ragan Aug 27, 2018 3 mins Vulnerabilities Security Podcasts Videos Resources Events SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe